Unfixed XSS vulnerability at www.pimapen.cc

2008-11-30T00:00:00
ID XSSED:55041
Type xssed
Reporter Alaim-iZaaf
Modified 2011-12-18T00:00:00

Description

Security researcher Alaim-iZaaf, has submitted on 30/11/2008 a cross-site-scripting (XSS) vulnerability affecting www.pimapen.cc, which at the time of submission ranked 5976016 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 18/12/2011. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://www.pimapen.cc/pimapen/tr/ara.php?kelime=<script>alert(String.fromCharCode(097, 108, 097,105, 109, 105, 122, 097, 097, 102 ))</script>